The firm predicts that AI will catalyze more threat actors to regroup faster and launch even more attacks in 2025

Other observations in the report include:

  • Despite short term law enforcement crackdowns, threat actors had continued to emerge quickly after intervention. LockBit was operating again only five days after its takedown, with warnings that it intended to be back in full force by February 2025.
  • International collaborations to recognize and address the threats posed by cyber adversaries had been stepped up during 2024, with notable examples including coordinated law enforcement actions such as operations such as Cronos, Magnus, Destabilise, and Serengeti.